This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.mft File: LKN9qXDEZkV1g7vgKyoOcvvcYyg.mft (raw, json) Hash identifier: HfXcXoqocOW3e/AoCJ50KSY5eD9abQkcbukW0wBC5bs= Subject key identifier: 9A:C1:15:7C:A6:F1:D1:83:C2:FF:34:BD:C4:9F:D4:01:44:0A:0B:34 Authority key identifier: 2C:A3:7D:A9:70:C4:66:45:75:83:BB:E0:2B:2A:0E:72:FB:DC:63:28 Certificate issuer: /CN=2ca37da970c466457583bbe02b2a0e72fbdc6328 Certificate serial: 019B1313F815A54A1183CB5F0915F0440E00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKN9qXDEZkV1g7vgKyoOcvvcYyg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.mft Manifest number: 026E Signing time: Fri 12 Dec 2025 15:00:34 +0000 Manifest this update: Fri 12 Dec 2025 15:00:34 +0000 Manifest next update: Sat 13 Dec 2025 15:00:34 +0000 Files and hashes: 1: 1KnXeZeK2jaZLc215sUulykWcXQ.roa (hash: MfFGqElV/jvH/sstkJrBdiD+qKnk4Q33yEmCF2id+a0=) 2: 65LOTWbYKO8WgYG9BzJDe2-WQYw.roa (hash: r/wzovoY8RroYrCDVvJnayhwU+roMgwKwl/4ua4F6NI=) 3: HLToq3nf5OApFMJ_DLN91h1Fnjo.roa (hash: 1jDZSo5xWA1TudXcCIeUFspwv8s1DeU3J7ObH+JPAu8=) 4: LKN9qXDEZkV1g7vgKyoOcvvcYyg.crl (hash: 1Czc/V2TwwwAGDapArUXef3e6a7OTcYKXtsVflmg0cE=) 5: m150QYtpxXBTiSlnK92QRVRD5zo.roa (hash: ebTEJw9nejGCIduesrnIYj5ZZrinqeTVbBAfSnKeowc=) 6: mgJ3Sc6KxuSRQNVYzl0KbaYNlDY.roa (hash: +UkcMaXx37s6HLo3vytB7ItB+h6lkh9Nk4bNEQS1Dtg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.mft rsync://rpki.ripe.net/repository/DEFAULT/LKN9qXDEZkV1g7vgKyoOcvvcYyg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 15:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:13:13:f8:15:a5:4a:11:83:cb:5f:09:15:f0:44:0e:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ca37da970c466457583bbe02b2a0e72fbdc6328 Validity Not Before: Dec 12 15:00:34 2025 GMT Not After : Dec 13 15:00:34 2025 GMT Subject: CN=9ac1157ca6f1d183c2ff34bdc49fd401440a0b34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0b:ef:f7:ee:46:e7:82:ca:92:60:98:00:a8: c5:7d:37:11:a6:36:38:66:4f:5a:7e:2f:bd:f7:8e: 6e:63:cc:c8:0f:8f:1a:b1:80:ff:e8:48:ca:ef:16: 2e:d7:72:17:63:bd:d9:39:44:3e:29:98:13:bc:11: fe:c8:9f:56:c8:70:46:15:7e:62:35:c5:a5:c1:72: 6c:c1:bd:e3:ab:f6:5a:5e:65:b9:44:0d:b6:00:1a: b2:78:d6:e2:e7:1a:e4:27:7f:b2:66:ad:06:4a:d2: 65:f0:00:07:96:20:b0:88:54:50:ec:1f:95:e5:38: 84:79:f0:08:32:2e:7e:3d:96:4a:64:27:6a:4e:55: 63:c2:2d:0d:37:08:93:71:93:55:01:13:5c:ae:09: b3:51:1c:cc:ad:9b:c9:6e:fd:d0:e4:82:27:a7:8c: 22:ca:cf:53:6d:dc:77:09:7c:34:c6:a4:db:76:95: 91:a1:80:c9:b6:0a:c4:64:64:1c:89:f8:e2:8b:43: e8:2d:1d:32:3a:e5:57:08:0e:89:d2:97:92:c7:16: 79:b1:8c:89:09:87:1f:94:dc:5d:82:2b:8b:41:a7: db:b3:50:7b:95:40:89:8e:45:82:4c:25:d2:d2:19: 8c:ad:f6:db:1f:43:7b:3e:de:a5:5f:d1:5d:0f:d2: a4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C1:15:7C:A6:F1:D1:83:C2:FF:34:BD:C4:9F:D4:01:44:0A:0B:34 X509v3 Authority Key Identifier: keyid:2C:A3:7D:A9:70:C4:66:45:75:83:BB:E0:2B:2A:0E:72:FB:DC:63:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKN9qXDEZkV1g7vgKyoOcvvcYyg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:e5:85:a1:48:20:8e:ed:09:e5:db:d9:02:76:d7:1c:06:a8: a1:fc:39:9b:db:0b:96:09:c4:0a:dc:a7:b5:3a:d9:ba:f4:5e: b5:1b:6f:f6:d9:59:c6:eb:ba:3e:c1:e3:26:a8:9a:1a:8b:47: cc:95:ba:e9:9f:7b:09:de:90:9d:e6:f2:e8:cf:c8:3e:a6:34: fa:40:c6:54:c4:81:b8:56:2a:09:fc:7f:b3:67:d1:9f:df:58: 6d:6c:2d:53:4f:94:4b:55:f4:e1:01:7c:ea:4b:b8:29:59:dd: 1e:33:b3:e8:dd:41:11:2c:3a:e6:9d:af:4c:99:a4:66:34:00: 40:5b:bd:60:a0:0c:72:99:6b:fe:b3:2f:4c:d5:92:0f:83:36: df:5b:e0:81:3f:91:db:29:ac:59:f1:3d:de:21:23:f4:df:17: 55:51:6c:e4:a7:bd:4c:90:eb:bf:95:19:5b:12:a0:00:5e:40: a2:19:ac:b3:89:12:6d:54:4b:9a:f2:b7:0b:5d:3f:9e:ea:66: d3:55:17:57:60:07:aa:e1:b2:a1:49:02:53:7c:71:94:bf:e9: 57:99:9f:07:56:72:28:74:d4:6b:60:b8:85:a6:13:7c:9d:66: 23:cf:3b:db:6b:0e:35:93:64:0d:f1:5c:55:dc:ef:2a:01:0f: dd:53:d4:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsTE/gVpUoRg8tfCRXwRA4AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjYTM3ZGE5NzBjNDY2NDU3NTgzYmJlMDJiMmEwZTcyZmJk YzYzMjgwHhcNMjUxMjEyMTUwMDM0WhcNMjUxMjEzMTUwMDM0WjAzMTEwLwYDVQQD Eyg5YWMxMTU3Y2E2ZjFkMTgzYzJmZjM0YmRjNDlmZDQwMTQ0MGEwYjM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQvv9+5G54LKkmCYAKjFfTcRpjY4 Zk9afi+9945uY8zID48asYD/6EjK7xYu13IXY73ZOUQ+KZgTvBH+yJ9WyHBGFX5i NcWlwXJswb3jq/ZaXmW5RA22ABqyeNbi5xrkJ3+yZq0GStJl8AAHliCwiFRQ7B+V 5TiEefAIMi5+PZZKZCdqTlVjwi0NNwiTcZNVARNcrgmzURzMrZvJbv3Q5IInp4wi ys9Tbdx3CXw0xqTbdpWRoYDJtgrEZGQcifjii0PoLR0yOuVXCA6J0peSxxZ5sYyJ CYcflNxdgiuLQafbs1B7lUCJjkWCTCXS0hmMrfbbH0N7Pt6lX9FdD9KkJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJrBFXym8dGDwv80vcSf1AFECgs0MB8GA1UdIwQY MBaAFCyjfalwxGZFdYO74CsqDnL73GMoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTEtOOXFYREVaa1YxZzd2Z0t5b09jdnZjWXlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8yNDkyZmQtNmUzNy00NTgyLTg0ZTgt OGNhMjVmNDg4ZWJmLzEvTEtOOXFYREVaa1YxZzd2Z0t5b09jdnZjWXlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi8yNDkyZmQtNmUzNy00NTgyLTg0ZTgtOGNhMjVmNDg4ZWJm LzEvTEtOOXFYREVaa1YxZzd2Z0t5b09jdnZjWXlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi+WFoUgg ju0J5dvZAnbXHAaoofw5m9sLlgnECtyntTrZuvRetRtv9tlZxuu6PsHjJqiaGotH zJW66Z97Cd6Qneby6M/IPqY0+kDGVMSBuFYqCfx/s2fRn99YbWwtU0+US1X04QF8 6ku4KVndHjOz6N1BESw65p2vTJmkZjQAQFu9YKAMcplr/rMvTNWSD4M231vggT+R 2ymsWfE93iEj9N8XVVFs5Ke9TJDrv5UZWxKgAF5Aohmss4kSbVRLmvK3C10/nupm 01UXV2AHquGyoUkCU3xxlL/pV5mfB1ZyKHTUa2C4haYTfJ1mI88722sONZNkDfFc VdzvKgEP3VPUEg== -----END CERTIFICATE-----Generated at Fri Dec 12 19:42:23 2025 by rpki-client